iText 缓冲区错误漏洞

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. A buffer error vulnerability exists in iText that stems from the iText v7.1.17 component readStreamBytesRaw contains an out-of-memory error that can be exploit...

iText 缓冲区错误漏洞

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. iText has a buffer error vulnerability that originates from the iText v7.1.17 component readStreamBytesRaw contains an out-of-memory error that can be exploite...

Sealevel Systems SeaConnect 370W 缓冲区错误漏洞

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. It is used to remotely monitor and control the status of actual I/O processes. A buffer error vulnerability exists in the Sealevel Systems SeaConnect 370W, which stems from the...

Security update for samba (important)

openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2022:0283-1 Rating: important References: 1139519 1183572 1183574 1188571 1191227 1191532 1192684 1193690 1194859 1195048 SLE-23329 Cross-References: CVE-2020-27840 CVE-2021-20277 CVE-2021-20316 CVE-2021-36222...

Esri ArcReader 缓冲区错误漏洞

Esri ArcReader is an application from Esri, USA. a free, easy-to-use desktop mapping application. A security vulnerability exists in Esri ArcReader that could allow a remote attacker to disclose sensitive information about an affected installation of Esri ArcReader. User interaction is required t...

Bentley Systems Bentley View 缓冲区错误漏洞

Bentley Systems Bentley View is a free viewer from Bentley Systems, USA. A buffer error vulnerability exists in Bentley View that can be exploited by an attacker to disclose sensitive information about an affected Bentley View installation...

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley MicroStation CONNECT is a Cad software platform for 2D and 3D design and drafting. A code execution vulnerability exists in Bentley MicroStation CONNECT, which can be exploited by an attacker to execute arbitrary code in the context of the current process...

Stormshield Network Security 缓冲区错误漏洞

Stormshield Network Security is a next-generation UTM Unified Threat Management firewall from the French company Stormshield. A buffer error vulnerability exists in Stormshield Network Security that stems from a failure to properly handle errors in memory management in the product's ASQ. An...

Samba 缓冲区错误漏洞

Samba is the standard Windows interoperability program suite for Linux and Unix. A security vulnerability exists in Samba that stems from a lack of proper validation of the length of user-supplied data before copying it into a fixed-length heap-based buffer. An attacker could exploit this...

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley MicroStation CONNECT is a Cad software platform for 2D and 3D design and drafting. An information disclosure vulnerability exists in Bentley MicroStation CONNECT, which can be exploited by attackers to obtain sensitive information...

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT that could allow a remote attacker to execute arbitrary code on an affected Bentley MicroStation CONNECT...

Connman 缓冲区错误漏洞

Connman is a connection manager. A security vulnerability exists in Connman's DNS proxy that stems from forwarddnsreply mishandling strnlen calls, resulting in out-of-bounds reads. No details of the vulnerability are provided at this time...

Linux kernel buffer overflow vulnerability (CNVD-2022-07634)

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel is vulnerable to a buffer error that originates from a double-release error in the packetsetring function in net/packet/afpacket.c. A local attacker could exploit this vulnerability to throu...

Trend Micro Worry-Free Business Security 缓冲区错误漏洞

Trend Micro Worry-Free Business Security is a suite of enterprise-class information security protection solutions from Trend Micro. The product provides anti-spam, anti-virus, network security, and email protection. Trend Micro Worry-Free Business Security suffers from a buffer error vulnerabilit...

Jsish 缓冲区错误漏洞

Jsish is a small JavaScript parser with a built-in database written in C. A security vulnerability exists in Jsish v3.5.0, which could lead to a denial of service DoS...

PJSIP 缓冲区错误漏洞

PJSIP is a free and open source multimedia communications library written in C that implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. A security vulnerability exists in PJSIP 2.11.1 and earlier versions, where there are multiple scenarios where certain incoming...

Cesanta MJS 缓冲区错误漏洞

Cesanta MJS is an embedded JavaScript engine for C/C from Cesanta Ireland. cesanta MJS denial of service vulnerability can be exploited by attackers to cause a denial of service...

Apple macOS Monterey 缓冲区错误漏洞

Apple macOS Monterey is the 18th major release of Apple's US macOS for the Macintosh desktop operating system. Apple macOS Monterey 12.2 suffers from a buffer error vulnerability that stems from a boundary error in the AMD kernel in macOS. An attacker could exploit the vulnerability to run a...

Apple macOS Monterey 缓冲区错误漏洞

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. Apple macOS Monterey suffers from a buffer error vulnerability that exists as a result of a boundary error in the Intel graphics driver on the system. A local user can run a specially...

Apple多款产品缓冲区错误漏洞

Apple tvOS and others are products of Apple Inc. in the U.S. Apple tvOS is an operating system for smart TVs.Apple iPadOS is an operating system for iPad tablets.Apple macOS Big Sur is a mobile app app. A buffer error vulnerability exists in several Apple products that stems from a boundary...